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(54) Transponder 

(57) Novel means of achieving increased security 
while still obtaining a low cost, manufacturabie device 
are disclosed and claimed. The first mode of operation 
is the learn mode which provides means for initial 
checkout with no security. In the learn mode of opera- 
tion, the interrogator and transponder may be switched 
to a predetermined error detection algorithm, i.e. 
CCITT(Start Mask 46, CCITT Mask 42), and certain 
information is programmed into the transponder mem- 
ory. During programming, all the bits received from the 
interrogator are shifted through the preintialized CRC 
generator. In addition, once the transponder response is 
sent back to the interrogator, the response is also 
shifted through a preinitialized CRC generator within the 
interrogator(which could be a software implementation). 
Because neither the Cypher Key 58 nor the Function 
Key 56 are directly readable once programmed, an 
encryption must be performed to verify the proper 
Cypher Key 58 and Function Key 56 were programmed 
into the transponder's memory. In the second and 
encryption mode of operation, after a special Com- 
mand/Address is transmitted, a Random Number 
(which may vary in length but which has a minimum 
length) is transmitted from the interrogator to the trans- 
ponder which in turn generates the Signature by shifting 
the Random Number through the CRC Encryption Gen- 
erator (initialized with the Cypher 58 and Function Key 
56). The Signature along with data, status and address 
are transmitted back to the interrogator which in the 
meantime has predetermined the awaited Signature 
using the same Cypher 58 and Function Key 56. 

If the received Signature and calculated Signature 
are equal, validation is positive and then the pro- 
grammed data must be locked(especially the Cypher 
Key 58 and Function Key 56) to protect them against 
reprogramming in the future 
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Description 

FIELD OF THE INVENTION 

5 This invention pertains to transponders used in wireless security and identification systems and more specifically 
to the use of economical encryption techniques to protect against unauthorized access to the equipment or data 
secured by such transponders. 

BACKGROUND OF THE INVENTION 

10 

Batteryless radio frequency identification (RF-ID) systems rely on the rectification of the interrogation signal for 
power as has been taught in the U.S. patent number 5,053,774 of Josef Schuermann et al, issued October 1, 1991. 
This, in turn, requires that the transponder circuitry consume very little power. The application of such transponders, 
such as for animal identification, requires that the packaging be quite small. As a result of these constraints, most such 

is transponders have read-only capability. As an example of an unsuitable approach for these applications, systems, such 
as that described in U.S. Pat. No. 5,310,999, "Secure Toll Collection System for Moving Vehicles", issued May 10, 1994, 
would consume far too much power, be too bulky and cost too much. The continued growth of applications of RF-ID sys- 
tems requires improvements in avoiding false interrogations and data modification either deliberate or accidental. 
Improved RF-ID systems have Read/Write transponders as disclosed in U.S. patent number 5,450,088 issued Sep- 

20 tember 12, 1995, and are used in airline baggage tracking, warehouse goods tracking and assembly line piece part 
tracking. In the patent reference mentioned above, the application of toll collection from a rapidly moving vehicle 
requires a remote Read/Write capability with rapid response time. Some automobiles are now provided with remote 
transmitters for unlocking doors, fuel tanks and luggage compartments. Increased security as well as vehicle immobili- 
zation is highly desirable. Because of the added protection required to prevent unauthorized persons from realizing per- 

25 sonal gain, some sort of encryption capability within the remote transponder is required to achieve more security. 

Additionally, in all electrical information transmission systems, due consideration must be given to the effects of 
noise! Noise is any unwanted signal and may originate from different sources. The nature of errors in telecommunica- 
tion systems is very important in considering error detection. The transponders, generally of the type are described in 
U.S. patent number 5,430,447 issued July 4, 1995. Unlike conventional computerized transponders, response data is 

30 in the form of a binary digit stream rather than byte type data with header protocols, start and stop bits, etc. that are 
common to the computer communications art. There are numerous methods involving software manipulation of bytes 
for encrypting and decrypting data streams. However, these methods do not apply because of high complexity and high 
cost. 

An alternative method to determine whether the bits in a telegram have been properly received consist of append- 
35 ing an additional block of bits to each telegram. This additional block of bits , data, could be calculated out of the tele- 
gram data bits using a specific algorithm. For example, CRC-CCITT is one error detection algorithm which could be 
used but there are also many other algorithms used in several application areas which work on a similar basis. FIG. 2 
shows the pertinent portion of a prior art CCITT CRC generator. This consists of a 16 bit shift register 22 (whose data 
flip-flops are labeled B0..B1 5) with three XORs 24, 28, 29 in the feedback loop. B0..B15 have a common clock line 30 
40 which is created from the received data by clock generator 21 and a power up reset line 32. The previously described 
gating terminals B of the XORs 24, 28 are tied to 26 which is the output of XOR 29 and the input of the shift register 22. 
XOR 29 has one input from the output of shift register 22 and the other from the data input 27. XOR 24 has the other 
input from B1 1 and its own output to the data input of B10. In similar manner XOR 28 is tied between B4 and B3. 
The starting condition of shift register 22 is determined by Reset line 32. At power up, all 16 bits, B0...B15, are set 
45 to logic 0. 

An implementation of the prior art CRC-CCITT generator of Figure 2 is described. A Frame BCG is generated in 
the interrogator from the Command/Address byte, the Data and Data BCC. 

The transponder receives the Frame BCC from the interrogator and applies the received bits of data to the CRC 
generator generating a new BCC, calculated from the CCITT algorithm. The comparison of the two BCC's , received 
so and newly calculated, provides evidence of receipt of valid or invalid data. If both BCC's are equal then the received 
data is valid, and if the BCC's are not equal, then the user data and/or the transmitted BCC must be corrupted. In actu- 
ality, the comparison is performed by continuing the generation of the new BCC within the interrogator while still receiv- 
ing the transponder response data and BCC until all bits are received and then comparing the content of the registers 
to zero. 

55 If the content of the registers in the interrogator is zero then the received data is valid, and if the content of the registers 
is not zero, then the user data and/or the transmitted BCC must be corrupted The algorithm of the CRC-CCITT gener- 
ator shown in Figure 2 is well known and so fails to provide any security measure although it does provide a means for 
checking the validity of the received data regardless. 
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SUMMARY OF THE INVENTION 

The object of the invention is to overcome the previously mentioned problems and to provide greater security for 
batteryless, remote transponders against undesired intrusion whether from deliberately hostile sources or noise, 

5 (e.g. accidental radio interference). This invention describes novel methods of incorporating a method of cyclic redun- 
dancy checking (CRC) which is used in this invention to also generate a digital signature. Such CRC hardware gener- 
ates a random bit stream which repeats itself exactly after a known and pre-determined number of bits. Because of the 
CRCs properties, in this invention an interrogation signal or challenge of a variable length random bit stream will result 
in a predictable, unique digital signature. 

10 A 16 bit system is described for convenience but not as a constraint. The variations achieved by a 16 bit Function 
Key, which determines the encryption procedures, i.e. which XOR will be activated and which XORs will be deactivated 
(where activated means that the output of a shift register cell is EXOR combined with the output (GENOUT) of the gen- 
erator and deactivated means the EXOR is transparent and the shift register cells work in normal shift mode) plus 
another independent 16 bit word Cypher Key (that determines a shift register starting position) reduces an intruders 

75 chance of success to 1 in 4,294,967,296 per attempt. 

Novel means of achieving increased security while still obtaining a low cost, manufacturable device are disclosed 
and claimed. This invention comprises two modes of operation which increases the value and flexibility of this invention. 
The first mode of operation is the learn mode which provides means for initial checkout with no security. In the learn 
mode of operation, the interrogator and transponder may be switched to a predetermined error detection algorithm, i.e. 

20 CCITT(Start Mask, CCITT Mask), and certain information is programmed into the transponder memory such as identi- 
fication numbers, serial numbers, passwords (i.e. selective addresses), the Cypher Key and the Function Key. During 
programming in the Learn Mode, all the bits, received from the interrogator, (i.e programming information), are shifted 
through the preintialized CRC generator. The result remaining in the shift registers should be zero. In addition, once the 
transponder response is sent back to the interrogator, the response is also shifted through a preinitialized CRC gener- 
25 ator within the interrogator (which could be a software implementation). This insures protection of data during transfer 
from reader to transponder and from transponder to reader. Before locking these functions, which prevents further alter- 
ation of the the Cypher and Function Keys, control reads must be executed by the interrogator to check the validity of 
the programmed information by reading what was just programmed. However, neither the Cypher Key nor the Function 
Key are directly readable once programmed for security purposes and therefore an encryption, (i.e. within the CRC geri- 

30 erator), the initial Start Mask and CCITT Mask must be switched to the encrypted Cypher Key and Function Key, must 
be performed to verify the proper Cypher Key and Function Key were programmed into the transponder's memory. 

In the second and encryption mode of operation, after a special Command/Address is transmitted, a Random 
Number (which may vary in length but which has a minimum length) is transmitted from the interrogator to the trans- 
ponder which in turn generates the Signature by shifting the Random Number through the CRC Encryption Generator 

35 (initialized with the Cypher and Function Key). The Signature along with data, status and address are transmitted back 
to the interrogator which in the meantime has predetermined the awaited Signature using the same Cypher and Func- 
tion Key also stored in non-voltatile non-readable memory within the interrogator. In actuality, the comparison is per- 
formed by continuing the generation of the new BCC within the interrogator while still receiving the transponder 
response data and BCC until all bits are received and then comparing the content of the registers to zero. If the content 

40 of the registers in the interrogator is zero then the received data is valid, and if the content of the registers is not zero, 
then the user data and/or the transmitted BCC must be corrupted. In other words, if the received Signature and calcu- 
lated Signature are equal, validation is positive and a security function can be released (i.e.immobilization of a car 
engine). Then post verification, the programmed data must be locked (especially the Cypher Key and Function Key) to 
protect them against reprogramming in the future. The lock provides the security because the Keys are known only by 

45 the interrogator and the transponder. 

Thereafter, in the normal field of operation, after the programming and locking function is performed during the 
manufacturing process, only the encryption mode is used. The encryption mode is detected by the transponder 
because the first byte the transponder receives is the Command/Address byte which tells the transponder how many 
bits it is to receive, what function should be executed, (i.e. encryption mode), and which page of the memory should be 

so affected. Receipt of this command causes the transponder to interrupt generation of the Frame BCC, which was begun 
with the the first bit of the Command/Addess byte, and to intialize the Generator with the Cypher Key and Function Key. 
Then, only the Challenge (Random Number) is shifted through the Generator in order to get the Signature for response. 

BRIEF DESCRIPTION OF THE DRAWINGS 

55 

The present invention will now be further described, by way of example, with reference to the accompanying draw- 
ings in which:- 

FIG. 1 shows an exclusive-or (XOR) used as a programmable inverter in accordance with the prior art; 
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FIG. 2 illustrates a fragment of a standardized cyclic redundancy check (CRC) generator adopted by the Consult- 
ative Committee for Telephone & Telegraph (CCITT) in accordance with the prior art; 

FIG. 3 is a partial schematic of the CRC generator according to a preferred embodiment of the present invention; 
5 and 

FIG. 4 is a block diagram of a batteryless transponder system incorporating the CRC generator according to a pre- 
ferred embodiment of the invention and other means of increasing security. 

10 DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS 

This description of some of the preferred embodiments will be aided by the referral to FIG. 1-4 and TABLE I. The 
method of cyclic redundancy check (CRC) generation is so fundamental to this invention that a brief overview will be 
presented. A CRC generator is a serial input shift register that contains feedback from the output bit to other bit posi- 

is tions within the shift register. This feedback is effected by the use of exclusive-or (XOR) logic gates used as program- 
mable inverters. In FIG. 1, FIG. 1(a) shows the symbol used herein for the XOR 10 having inputs A and B and output 
OUT FIG. 1(b) shows the bit stream input 16 to input A and OUT bit stream 18 when modified by 20, the gating signal 
to B. During time interval 12, OUT replicates A while B is at logic 0. During time interval 14, OUT is the inversion (com- 
plement) of A while B is at logic 1 . FIGs. 2 and FIG. 3 show the use of XOR gates in such manner. 

20 As stated previously, the additional bits added to the end of a transponder response data stream are generated via 
a predetermined algorithm and are known as the error detection bits (BCC) or the Signature. The predetermined algo- 
rithm which generates these error detection bits is a function of the CRC generator. Depending upon the number of the 
XOR's and the initial states/programmed states of data flip flops and XOR's which make up the CRC generator, a 
unique algorithm is conceived, thereby creating a unique signature error detection system. If the transponder is to be 

25 programmed, the interrogation data stream comprises a Command/Address, a selective address, Data, Data BCC and 
a Frame BCC where the Data may comprise identification data and the Cypher and Function Keys. The interrogation 
data stream, is always sent least significant bit (LSB) first to the transponder. The first data bit (LSB data) is then exclu- 
sive or'ed (exored) with the LSB of the shift register and that result is shifted into the register's most significant bit 
(MSB). Bit by bit the received data stream from the interrogator, the Data, Data BCC, commands, addresses and Frame 

30 BCC are transferred through the CRC generator in the transponder and the end result remaining in the shift register 
must be zero. The transponder response data stream, comprising Data, Data BCC, and Status/Address data, is then 
shifted through the transponder's newly initialized CRC generator, and the resulting Frame BCC in addition to the trans- 
ponder response data is transmitted to the interrogator. Once the transponder response data and Frame BCC is trans- 
mitted to the interrogator and is shifted through the interrogator's CRC generator. A match of the BCC's yields a valid, 

35 secure data transmittal. 

According to a preferred embodiment of this invention, as shown in Figure 3, the starting condition of the CRC shift 
register i. e. what value the output of all the flip flops are set to via the set and reset inputs (assuming a 1 6 bit length), is 
determined by a 16 bit word which may be a Starting Mask, which may be preprogrammed into the transponder and 
interrogator explicitly from the program generator at the manufacturing level, or a Cypher Key, which can be either pre- 

40 programmed at the manufacturing level or programmed into the transponder by the customer via the interrogation sig- 
nal while still in the mode, (i.e. prior to locking the Cypher and Function Keys). Rather than one possible starting 
condition of the shift register, this gives 65,536 possible starting positions which significantly enhances the security of 
the system. 

In order to enhance security even further, this invention uses an XOR between every bit position (i.e. between every 
45 flip flop of the shift register). Whether these XORs are inverting or not is determined by another 1 6 bit word referred to 
as the Function Key or Encryption Constant, also preprogrammed at the manufacturing level or programmed by the cus- 
tomer in learn mode, which creates yet another added measure of security. The Function Key can take any of 65,536 
values which raises the total number of codes to 4,294,967,296. Not ail of these codes are equally secure due to a 
shortening of the cycle of the random bit sequence. In other words, some combination's of XOR's will produce cyclic 
so repetition of the output within a very short bit stream. 

For convenience and in the first or learn mode of operation, the Function Key and Cypher Key may both be set to 
a predetermined value (such as the standard CRC-CCITT Mask and the Start Mask respectively) for post-manufactur- 
ing checkout or other less secure communication by preprogramming both the Function Key and the Cypher Key in 
addition to a identification number, a serial number and passwords(selective addresss) into the transponder/interroga- 
55 tor at the manufacturing level. After programming the interrogator and/or transponder, the less secure information, (i.e. 
the identification and serial numbers), is verified via a control read while the more secure non-readable predetermined 
codes (Cypher Key and Function Key) may be used for validation of the transponder using a challenge response prin- 
ciple while the transponder is in the second mode of operation, the encryption mode. In the encryption mode of opera- 
tion, after a Command/Address is transmitted, a Random Number (which may vary in length but which has a minimum 
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length) is transmitted to the transponder which in turn generates the Signature by shifting the Random Number through 
the CRC Encryption Generator (initialized with the Cypher and Function Key). The Signature is transmitted back to the 
interrogator which in the meantime has predetermined the awaited Signature using the same Cypher and Function Key 
also stored in non-voltatile non-readable memory within the interrogator. If the received Signature and calculated Sig- 

5 nature are equal validation is positive and a security function can be released (i.e. immobilization of a car engine). 
Security is based upon the number of possibilities of Cypher and Function Keys and on the fact that the Keys cannot be 
read out of the transponder or interrogator. 

FIG. 3 and TABLE I may be used as references in the following description of the novel encoding technique of this 
invention. The transponder received serial bit stream is applied to input 40 of the CRC generator according to a pre- 

10 ferred embodiment of the invention. The CRC generator transforms input 40 to an encoded output bit stream to output 
66. The sequence of this output stream is determined by the internal components of the CRC generator, (i.e. shift reg- 
ister comprising flip-flops and XOR's), and those components initial states and other previously described controls. 

The shift register 43 consists of the input data flip-flop 44, the internal flip-flops 52 and the output data flip-flop 60. 
These flip-flops, 44,52,60, represent the bit positions of the resulting encoded bit stream. A preferred embodiment 

15 according to this invention has sixteen XOR's and, except for 68, are labeled collectively as 50. All XORs 50 have one 
input tied to the output of one of the shift register 43 flip-flops 44, 52 or 60. The other input terminals of XOR's 50 are 
the feedback terminals (equivalent to B input of FIG. 1), which determine which of the XOR's 50 inverts the input and 
which XOR's 50 replicates the input, from flip flop's 44, 52 and 60, which in turn is determined by the output of the two 
input AND gates 48. AND gates 48 are used as switches whose state is governed by either the predefined function key 

20 42 (such as the CCITT standard) or the more secure Function Key 56. Each of these Function Keys is stored in a sem- 
iconductor memory such as an EEPROM. In this manner, one of the 65,536 possible Function Keys is implemented to 
select which of the XOR's 50 are in the feedback loop. Whether the CCITT or secure Function Key is selected is deter- 
mined by the position of Switch 54 which can be controlled by internal mechanical switches or decoded from the data 
stream. 

25 At power up and in learn mode, the initial state of each cell of the shift register 43 is determined by the Start Mask 
46, typically '00.. .0'. This Start Mask 46 along with the CCITT Mask 42 is used for cyclic redundancy checking during 
the reception of data to be programmed and locked in the transponder EEPROM from the interrogator and during 
response of data and status messages to the interrogator from the transponder. The Cypher Key is available from 
Cypher Key EEPROM 58 and the Function Key is available from Function Key EEPROM 56 when the generator works 

30 in the encryption mode, i.e. when the interrogator sends a challenge to the transponder to receive the Signature back 
for validation. At this stage, neither the Cypher Key nor the Function Key used during the encryption process can be 
read by the interrogator. Only the interrogator which has programmed and locked the Keys can predetermine at once 
the Signature (the content of the transponder's shift register after the challenge is shifted through the generator). 
Whether Start Mask 46 or Cypher Key 58 is selected is determined by the position of switch 55 and whether the CCITT 

35 Mask or the Function Key selected is determined by switch 54 both of which can also either be controlled by internal 
mechanical switches or decoded from the bit stream. 

FIG. 3 is schematic in nature and does not show every wire. The reset bus 47 and set bus 53 are each 1 6 bits wide 
and are only effective during power up in a manner determined by either Start Mask 46 or Cypher Key 58 as controlled 
by switch 55. As the input bit stream received on 40 is applied to XOR 68, the output of XOR 68 is either inverted or 

40 replicated depending on the state of flip flop 60 and the input bit stream. The state of 60 is governed by the prior history 
being fed back to the other stages of the shift register. Regardless of how random the output bit stream on output 66 
may appear, the sequence is governed by the Function Key and the Cypher Key such that the interrogating station may 
predict the exact output sequence that 66 is expected to return after all challenge bits sent to the transponder have been 
shifted through the generator. The challenge will be a fixed or variable number of bits and the response a fixed number 

45 of bits. When the number of challenge bits falls below a certain limit, which is preferably greater than the number of shift 
register cells, (i.e. 41) the transponder should fail to respond with a Signature in order to prevent discovery of the Func- 
tion Key and the Cypher Key via single step actions by instead discharging automatically upon receipt of less than the 
predetermined number of bits. Having the response a fixed number of bits enables a rapid response system without 
undue complication or power consumption by the batteryless transponder. 

so FIG. 4 is a block diagram of a possible configuration for a batteryless transponder using the CRC generator just 
described in FIG. 3 and TABLE I. The frequency of operation is determined by the tuned circuit 70. In the receive mode, 
the power for the transponder is also derived from the energy received and stored in a capacitor in lieu of a battery to 
supply power for the transponder in the transmitting mode. The power supply, transmitter, modulator and receiver are 
all contained in block 72. 

55 The receiver output 74 is supplied to the CRC generator 100 according to a preferred embodiment of the invention 
as previously described. This is not to be confused with I/O shift register 92 which is used for several other purposes. 
The Function Key 56 and Cypher Key 58 are the same as previously described. The initial bit sequence is administrative 
in nature. After a certain time interval a ready signal with a start byte from 78 and the unique identification number bit 
sequence controlled by EEPROM 90 are transmitted on the transmitter data bus 76. Other identifiers relative to the 
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Cypher Key 58 and Function Key 56 may also be supplied. When lock bit 94 is "open", the Cypher Key 58 and Encryp- 
tion Constant 56 may both be changed if desired depending on the write command 96. The control status is governed 
by the read status 98. After the internal "combination" is in the desired state, the lock bit 94 is "locked" such that no fur- 
ther alteration of the Encryption Constant or Cypher Key is possible. In this locked condition, the return bit string to the 

5 interrogating station is applied at 88 to modulate that data being transmitted from the batteryless transmitter. This bit 
string, though random, is predictable by the interrogating station to verify the security of the transponder. 

In addition, although a preferred embodiment of the invention entails the use of an encryption generator in the 
transponder, a second preferred embodiment according to the invention involves implementation of a CRC-generator 
in the interrogator for generation and check of the Data BCC and the frame BCC and for prediction of the Signature of 

10 the Encryption generator. Therefore, an example of the Cyclic Redundancy Check (CRC) of the Data Block Check 
Character (BCC) performed by the interrogator is described. A transponder could have 64 user bits, comprising the 
unique transponder ID and 16 error detection bits or Data BCC in it's transmitted data stream. During the manufacture 
of the transponder, both the unique ID number of the transponder and the Data BCC(calculated by the interrogator soft- 
ware from the unique number according to a predetermined algorithm, i.e. the CCITT algorithm) will be programmed 

15 into the transponder memory. During the receive phase the interrogator receives not only status and address informa- 
tion, but also a Frame BCC, the transponder identification number and the transmitted (precalculated) Data BCC. 

To ensure the integrity of the received user data, the reader, typically via software manipulation, checks to deter- 
mine whether the Data and Data BCC have been changed accidentally in memory, due to weaknesses in the memory, 
or during transmission to the interrogator. In addition, commands, addresses and status messages must be protected 

20 against noise in the RF channel using the Frame BCC. Although the CRC in the interrogator could be performed with a 
hardware CRC generator designed as a special hardware module in the interrogator microcontroller, typically the CRC 
generator is a software check of the validity of the received data. A software check is typically performed due to the ease 
of protecting against manipulation by using mask programmed single chip computers with built-in non-volatile memory 
and protection against memory readout. 

25 Generally, the received Signature is compared to the Signature predetermined by the interrogator, however, the 
received Signature could be shifted through the interrogators CRC encryption generator with a zero resulting from such 
procedure. Of most importance is that the keys are never communicated by external busses. 

While this invention has been described with reference to illustrative embodiments, this description is not intended 
to be construed in a limiting sense. There are so many variants to the coding sequence, that it is impossible to explicitly 

30 enumerate them. However, knowing the internal connections of the transponder makes all such sequences predictable. 
All such predictable sequences are claimed by this invention. Pending applications concerning programming, reading 
and locking procedures are equally applicable to this invention. US Patent No. 5,430,447 uses a combination of selec- 
tive addressing and segment coding techniques which are also allowable techniques with this invention. Although 
shown schematically as separate electronic entities for illustrative purposes, the Cypher Key(s) and Encryption Con- 

35 stant(s)(Function Key) may both be contained in a single electrically alterable read only memory or EEPROM along with 
all other administrative binary words required. Also for illustrative purposes, 16 separate set and 16 reset lines were 
shown to initialize the CRC shift register. Since these are only used at power up, a brute force hold down or pull up of 
the output of each data flip-flop in the CRC generator would be equally satisfactory. 

The number of 16 bits was used throughout for an illustrative example. Any number of bits may be used. In the 

40 binary IC world 8, 16, 24, 32 and 64 bit parts are readily available but custom parts can use a non-standard number of 
bits. 

Various modifications and combinations of the illustrative embodiments, as well as other embodiments of the inven- 
tion, will be apparent to persons skilled in the art upon reference to the description. 
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TABLE I 





ID# 


Description 


Function 


5 


40 


Data input bus 


Bit stream that is to be encoded 


10 


42 


Fixed 16 bit CCITT mask. May be provided by 
ROM of any technology. 


To provide a known encryption procedure for 
checkout or other less secure use by dictating 
which XOR's invert and which XOR's don't invert. 


43 


Digital shift register 


Shifts one bit position per clock cycle 


15 


44, 52, 60 


Internal data type flip-flops, 16 in this example. 


Sets output to same logical condition (1 or 0) as 
the data (D) input on each clock cycle. May also 
be set to 1 or reset to 0 regardless of clock condi- 
tion. 




46 


Start Mask for CRC-CCITT. May be provided by 
ROM of any technology. 


Sets shift register 43 to predetermined starting 
value. 


20 


47 


16 individual flip-flop reset lines. 


Determine which of the 1 6 flip-flops start at logical 
0. 




48 


Logical AND gates. 


Select which XORs 50 invert their input and which 
replicate their input. 




50 


Exclusive ORs (XOR) logic gates. 


Programmable inverters. 


25 


53 


16 individual flip-flop set lines. 


Determine which of the 1 6 flip-flops start at logical 
1. 




54, 55 


Switch 


Select between known Function Keys and Cypher 
Keys. 


30 


56 


Semiconductor 16 bit, multiple word, programma- 
ble memory such as EEPROM. 


Unique Function Key to secure transponder. 




58 


Semiconductor 16 bit, multiple word, programma- 
ble memory such as EEPROM. 


Unique Cypher Key to determine starting condi- 
tion of shift register 43. 


35 


62 


2 Input logical AND gate. 


Enables 'shift 'respectively 'generate 'function by 
opening/closing the feedback loop of 
CRC/Encryption Generator 




66 


Encoded output 




40 


68 


XOR 


Takes the combination of the input data stream 
and the output of 60 to determine whether a dig- 
ital 1 or 0 is fed back to the shift register 43 
stages. 
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Claims 

so 1 . An encryption generator for encrypting an input serial bit stream signal comprising: 

a shift register including a plurality of flip flops having set and reset lines for setting the output of at least a 
respective one of said plurality of flip flops irrespective of said input to said flip flops in response to either a Start 
Mask or a Cypher Key; 

55 a plurality of input AND gates, at least two of said AND gates having a f irst input connected to either a standard 

mask or a Function Key and a second input connected to the output of at least a further two input AND gates; 
a plurality of input XOR gates at least a first two of said input XOR gates having a first input connected to the 
output of said plurality of flip flops and a second input connected to the output of said plurality of AND gates for 
inverting or not inverting said shift register output, at least a further two of said plurality of input XOR gates hav- 
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ing a first input connected to an input serial bit stream and a second input connected to the output of a last of 
said plurality of flip flops; and 

at least a further two input AND gates having a first input connected to the output of said at least further two 
input XOR gates and a second input connected to said standard mask or said Function Key, and an output con- 
nected to the input of said at least two input AND gates for enabling a feedback loop of said shift register gen- 
erator. 

2. An encryption generator according to Claim 1 , wherein said plurality of flip flops and said plurality of input XOR 
gates are equal in number. 

3. An encryption generator according to Claim 2, wherein said number is 1 6. 

4. An encryption generator according to any preceding claim, wherein said start mask is preprogrammed into a mem- 
ory during manufacturing and determines which shift registers are set and which are reset. 

5. An encryption generator according to Claim 4, wherein said standard mask is the CCITT algorithm. 

6. An encryption generator according to any preceding claim, wherein said Cypher Key is programmed into a memory 
post manufacturing by a customer. 

7. An encryption generator according to any preceding claim, further comprising a control logic for counting the 
received serial input bits and in response thereto responding if an adequate number of bits is received or not 
responding if the number of received bits is inadequate. 

8. An encryption generator according to Claim 7, wherein said adequate number of bits is equal to the number of flip 
flops in said shift register. 

9. An encryption generator according to any preceding claim, wherein said Function Key is programmed into a mem- 
ory post manufacturing by a customer. 

10. An RF-ID system comprising: 

a transponder having a generator for receiving an interrogation signal and transmitting response data; 
an interrogator having a generator for transmitting an interrogation signal and for receiving said response data 
wherein said interrogation signal and/or said transponder data are encrypted via an encryption generator com- 
prising: 

a shift register including a plurality of flip flops having set and reset lines for setting the output of at least a 
respective one of said plurality of flip flops irrespective of said input to said flip flops in response to either a start 
mask or a Function Key; 

a plurality of input AND gates, at least two of said AND gates having a first input connected to either a standard 
mask or an encrypted cypher key and a second input connected to the output of at least a further two input 
AND gates; 

a plurality of input XOR gates, at least two of said XOR gates having a first input connected to the output of 
said plurality of flip flops and a second input connected to the output of said plurality of AND gates for inverting 
or not inverting said shift register output, at least a further two of said plurality of input XOR gates having one 
input connected to an input serial bit stream and a second input connected to the output of a last of said plu- 
rality of flip flops; and 

at least a further two input AND gates having a first input connected to the output of said at leasst further two 
input XOR gates and a second input connected to said start mask or said Function Key, and an output con- 
nected to the input of said at least two input AND gates for enabling a feedback loop of said shift register gen- 
erator. 

1 1 . An RF-ID system according to Claim 10 wherein said plurality of flip flops and said plurality of two input XOR gates 
are equal in number. 

1 2. An RF-ID system according to Claim 1 1 , wherein said number is 1 6. 

13. An RF-ID system according to any of Claims 10 to 12 wherein said start mask is preprogrammed into a memory 
during manufacturing and determines which shift registers are set and which are reset. 
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14. An RF-ID system according to Claim 13. wherein said standard mask is the CCITT algorithm. 

1 5. An RF-ID system according to any of Claims 1 0 to 14, wherein said Cypher Key is programmed into a memory post 
manufacturing by a customer. 

16. An RF-ID system according to any of Claims 10 to 15, further comprising a control logic for counting the received 
serial input bits and in response thereto responding if an adequate number of bits is received or not responding if 
the number of received bits is inadequate. 

17. An RF-ID system according to Claim 16, wherein said adequate number of bits is equal to the number of flip flops 
in said shift register. 

18. An RF-ID system according to Claim 16, wherein not responding entails discharging a charge circuit. 

19. A method of enhancing the security of the data exchange between an interrogator and a transponder comprising 
the steps of: 

programming less secure data which can be read and more secure data which cannot be read into a trans- 
ponder memory and programming said more secure data into said interrogator; 

verifying the validity of the transfer of the less secure data by executing a control read of the less secure data; 
verifying the validity of the transfer of the more secure data by executing an encryption comprising the steps of; 
transmitting a challenge to the transponder; 
generating a Signature which is a function of said more secure data; 
transmitting said signature along with other transponder response data to the interrogator; and 
verifying said Signature with said more secure data and authorizing a function in response to a verified Signa- 
ture. 

20. The method according to Claim 19, wherein said programming step comprises programming said more secure 
data with a Cypher Key. 

21. The method according to Claim 19, wherein said programming step comprises programming said more secure 
data with a Function Key. 

22. The method according to Claim 19, wherein said programming step comprises programming said more secure 
data with both a Cypher Key and a Function Key. 

23. The method according to any of Claims 19 to 212, wherein said step of generating said Signature comprises per- 
forming a block check character. 

24. The method according to any of Claims 19 to 23, wherein said programming step comprises programming less 
secure data including a frame BCC, identification data, selective address data and status, data. 

25. The method according to any of Claims 19 to 24, wherein said step of transmitting said challenge comprises trans- 
mitting a random number which has a length, at a minimum, of the number of shift registers in a CRC generator of 
said interrogator or said transponder. 

26. The method according to any of Claims 19 to 25, further comprising locking said more secure data into a trans- 
ponder memory such that said more secure data cannot be altered or read. 

27. The method according to any of Claims 19 to 26, further comprising providing a non-volatile, erasable, electrically 
programmable memory. 

28. The method according to any of Claims 19 to 27, wherein said step of generating said Signature comprises the 
steps of applying said challenge to a CRC generator pre-dispositioned with said more secure data, and with the 

1 resulting bits remaining in the shift register comprising said Signature. 

29. The method according to any of Claims 19 to 28, wherein said step of transmitting said other transponder response 
data comprises transmitting a frame BCC, identification data, status and address data. 
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30. The method according to any of Claims 19 to 29, wherein said verifying step comprises the steps of; applying said 
other transponder response data to a CRC generator predisposition ed with said more secure data, and with the 
resulting bits remaining in said register equaling zero. 

31. The method according to any of Claims 19 to 30, further comprising providing a CRC generator within said trans- 
ponder, said CRC generator comprising a shift register, having a plurality of flip flops having set and reset inputs, 
and a plurality of exclusive or gates each having two inputs. 

32. The method according to Claim 31, further comprising determining from said Cypher Key which of said exclusive 
or gates will be inverting and which will not be inverting said inputs. 

33. The method according to Claim 31 , further comprising determining from said Function Key which of said flip flops 
will be set and which of said flip flops will be reset. 

34. The method according to any of Claims 19 to 33, wherein said verifying step comprises the steps of; comparing 
said Signature to a predetermined Signature generated by said interrogator. 
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